BDU:2021-05621

BDU

Medium

Уязвимость функции обработки правил межсетевого экрана на основе идентификационных данных (IDFW) микропрограммного обеспечения межсетевых э…

CVSS

5.3

Medium

EPSS

0.00

Published

2021-01-01

Updated

2021-01-01

Description

Уязвимость функции обработки правил межсетевого экрана на основе идентификационных данных (IDFW) микропрограммного обеспечения межсетевых экранов Cisco Adaptive Security Appliance (ASA) и Cisco Firepower Threat Defense (FTD) связана с недостатками списка управления доступом (ACL). Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, обойти ограничения безопасности путем отправки специально созданных запросов

Tags · CWE

Pre-auth

Affected products

Cisco systems inc. Adaptive security applianceCisco systems inc. Adaptive security applianceCisco systems inc. Adaptive security applianceCisco systems inc. Adaptive security applianceCisco systems inc. Firepower threat defenseCisco systems inc. Firepower threat defenseCisco systems inc. Firepower threat defenseCisco systems inc. Firepower threat defense

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Timeline

2021-01-01

Published

2021-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: N

None (N)

Integrity Impact

I: L

Low (L)

Availability Impact

A: N

None (N)

Exploit indicators

EPSS

0.000 · p0

Known exploited (KEV)

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected software

Product	Vendor	Status
adaptive security appliance	cisco systems inc.	Tracked
adaptive security appliance	cisco systems inc.	Tracked
adaptive security appliance	cisco systems inc.	Tracked
adaptive security appliance	cisco systems inc.	Tracked
firepower threat defense	cisco systems inc.	Tracked
firepower threat defense	cisco systems inc.	Tracked
firepower threat defense	cisco systems inc.	Tracked
firepower threat defense	cisco systems inc.	Tracked

Source databases

BDU

Related vulnerabilities

CVE-2021-34787

External references

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-34787@https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-rule-bypass-ejjOgQEY@https://www.cybersecurity-help.cz/vdb/SB2021102809